Local Privilege Escalation Vulnerability in Acer NitroSense Software
A Local Privilege Escalation (LPE) vulnerability affects Acer NitroSense software versions prior to 3.01.3052. The vulnerability is caused by the PSAdminAgent service creating a Named Pipe with a weak Access Control List (ACL), allowing any authenticated local user to connect and send commands, and delete arbitrary files with system authority.